arXiv:1506.01476vl [cs.LO] 4 Jun 2015 


ICTCS 2015 


The decision problem for a three-sorted 
fragment of set theory with restricted 
quantification and finite enumerations 


Domenico Cantone^’^^ 

Dipartimento di Matematica e Informatica 
Universitd di Catania 
Catania, Italy 

Marianna Nicolosi-Asmundo'^'^ 

Dipartimento di Matematica e Informatica 
Universitd di Catania 
Catania, Italy 


Abstract 

We solve the satisfiability problem for a three-sorted fragment of set theory (denoted SLQSTq^), which 
admits a restricted form of quantification over individual and set variables and the finite enumeration 
operator over individual variables, by showing that it enjoys a small model property, i.e., any 

satisfiable formula -0 of SLQSTq^ has a finite model whose size depends solely on the length of ip itself. 
Several set-theoretic constructs are expressible by SLQSTo^-formulae, such as some variants of the power 
set operator and the unordered Cartesian product. In particular, concerning the unordered Cartesian 
product, we show that when finite enumerations are used to represent the construct, the resulting formula 
is exponentially shorter than the one that can be constructed without resorting to such terms. 

Keywords: Please list keywords from your paper here, separated by commas. 


1 Introduction 

Computable set theory is a research field studying the decidability of the satisfiability 
problem for collections of set-theoretic formulae (also called syllogistics). 

The main results in computable set theory up to 2001 have been collected in 
[8,13]. We also mention that the most efficient decision procedures have been im¬ 
plemented in the proof verifier /EtnaNova [16] and form its inferential core. 

Most of the decidability results established in computable set theory regard one- 
sorted multi-level syllogistics, namely collections of formulae involving variables of 
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one type only, ranging over the von Neumann universe of sets. On the other hand, 
few decidability results have been proved for multi-sorted stratified syllogistics, ad¬ 
mitting variables of several types. This, despite of the fact that in many fields of 
computer science and mathematics often one deals with multi-sorted languages. 

An efficient decision procedure for the satisfiability of the Two-Level Syllogistic 
language (2LS), a fragment admitting variables of two sorts for individuals and sets 
of individuals, basic set-theoretic operators such as U, 0, \, the relators =, G, C, 
and propositional connectives, has been presented in [14]. Subsequently, in [3], the 
extension of 2LS with the singleton operator and the Cartesian product operator 
has been proved decidable. Tarski’s and Presburger’s arithmetics extended with 
sets have been studied in [5]. The three-sorted language 3LSSPU (Three-Level 
Syllogistic with Singleton, Powerset, and general Union), allowing three types of 
variables, and the singleton, powerset, and general union operators, in addition to 
the operators and predicates already contained in 2LS, has been proved decidable 
in [4]. More recently, in [10], the three-level quantified syllogistic 3LQS'^, involving 
variables of three sorts has been shown to have a decidable satisfiability problem. 
Later, in [11], the satisfiability problem for 4LQS^, a four-level quantified syllogistic 
admitting variables of four sorts has been proved to be decidable. The latter result 
has been exploited in [9] to prove that 'DC{ALQS^){D), an expressive description 
logic, has the consistency problem for its knowledge bases decidable. 

In this paper we present a decidability result for the satisfiability problem of 
the set-theoretic language 3LQSTo^ (Three-Level Quantified Syllogistic with Finite 
Enumerations and Restricted quantifiers), which is a three-sorted quantified syllo¬ 
gistic involving individual variables, set variables, and collection variables, ranging 
respectively over the elements of a given nonempty universe D, over the subsets of 
D, and over the collections of subsets of D. The language of 3LQSTo^ admits the 
predicate symbols = and G and a restricted form of quantification over individual 
and set variables. 3LQSTo^ extends the fragment 3LQS^ presented in [10] since it 
admits the finite enumeration operator -} over individual variables. In spite 

of its simplicity, 3LQSTo^ allows one to express several constructs of set theory. 
Among them, the most comprehensive one is the set former, which in turn allows 
one to express other set-theoretic operators like several variants of the powerset and 
the unordered Cartesian product. We will present two different 3LQSTo^ repre¬ 
sentations of the latter construct: the first, more straightforward one involves finite 
enumerations and has linear length in the size of the unordered Cartesian product, 
the second one does not involve finite enumerations, is exponentially longer than 
the first representation, and is expressible also in 3LQS^. 

We will prove that 3LQSTo^ enjoys a small model property by showing how to 
extract, out of a given model satisfying a 3LQSTo^-formula il), another model of if} 
but of bounded finite cardinality. 

The paper is organized as follows. In Section 2, we describe the syntax and 
semantics of a more general language, denoted 3LQSTo, which contains 3LQSTo^ 
as a proper fragment. Subsequently, in Section 3 the machinery needed to prove 
our main decidability result is provided. In Section 4, the small model property for 
3LQSTo^ is established, thus solving the satisfiability problem for 3LQSTo^. Then, 
in Section 5, we show how 3LQSTo^ can be used to express several set theoretical 


operators. Finally, in Section 6, we draw onr conclusions. 


2 The language SLQSTq and its subfragment SLQSTq^ 

We begin by defining the syntax and the semantics of the more general three-level 
quantihed language SLQSTq. Then, in Section 2.1, we show how to characterize 
SLQSTo^-formulae by suitable restrictions on the usage of quantifiers in formulae 
of SLQSTq. 

The three-level quantified language SLQSTq involves 

(i) a collection Vq of individual or sort 0 variables, denoted hy x,y, z,.. 

(ii) a collection Vi of set or sort 1 variables, denoted hy X,Y, Z,.. 

(iii) a collection V 2 of collection or sort 2 variables, denoted hy A, B,C,.... 

In addition to variables SLQSTq involves also finite enumerations of type 
{xi,..., Xk}, with xi,... ,Xk € Vq, A; > 0. SLQSTq- quantifier-free atomic formulae 
are classified as: 

• level 0: x = y, x & X, {xi,...,Xk\ = X, {xi,...,Xk} £ A, where 
X, y,xi,... ,Xk € Vq, k > 0, X € Vi, and A e V 2 ; 

• level 1: X = Y, X gA, where X,Y gVi and A G V 2 . 

SLQSTq purely universal formulae are classified as; 

• level 0: (Vzi)... (Vzn)vO) with ipQ a propositional combination of level 0 
quantifier-free atoms and zi,... ,Zn variables of sort 0, with 

• level 1: (VZi)... where (pi is a propositional combination of 

quantiher-free atomic formulae of any level and of purely universal formulae of 
level 0, and Zi,..., Z^ are variables of sort 1, with m 1. 

Finally, the formulae 0 /SLQSTq are all the propositional combinations of quantifier- 
free atomic formulae and of purely universal formulae of levels 0 and 1. 

A SLQSTq- interpretation is a pair A4 = {D,M), where D is any nonempty 
collection of objects, called the domain or universe of At, and M is an assignment 
over the variables of SLQSTq such that 

• XIx G D, for each individual variable x gVq] 

• MX C D, for each set variable X gVy, 

• MA C pow(L)), for all collection variables A G V 2 . 

(we recall that pow(s) denotes the powerset of s) 

Next, let 

- At = {D,XI) be a SLQSTQ-interpretation, 

- Xi, ....Xn GVq, Xl,...X^ gVi, 

-ui,...UnGD, Ul,...U}^ Gpow{D). 

By At[ 2 :i/ui,..., Zn/un, ZifUi,..., Zm/Um] we denote the SLQSTQ-interpretation 


The logical connectives admitted in propositional combinations are the usual ones: negation -i, conjunc¬ 
tion A, disjunction V, implication and biimplication t-)-. 



Ad' = (D,AI') such that M'xi = Ui, for i = 1, M'Xj = Uj, for j = 1, 
and which otherwise coincides with M on all remaining variables. 

Throughout the paper we will use the abbreviations: Ad^ =Def 

Ad{zi/ui,... ,Zn/un]i Ad^ = Def -^{^ 1 /Ui,..., Zm/Um\ i where the variables Zi 
and Zj, the individuals Ui, and the subsets Uj are understood from the context. 

Let "0 be a SLQSTo-formula and let Ad = {D,M) be a 3LQSTo-interpretation. 
The notion of satisfiability for with respect to Ad (denoted by Ad \= fi) is defined 
recursively over the structure of yp. The evaluation of quantifier-free atomic formulae 
is carried out as usual according to the standard meaning of the predicates ‘G’ and 
‘=’. Purely universal formulae are interpreted as follows: 

• Ad \= Zi) . . . Zn)<fO iff Ad[zi/ui,. . . ,Zn/Un]\= 
for all ui,... , rtn G D; 

• Ad [= (VZi)... (VZ^)^i iff AA[Zi/Uu ..., ZmiUm] N 

for all C/i, C D. 

Finally, compound formulae are evaluated according to the standard rules of propo¬ 
sitional logic. Let "0 be a SLQSTo-formula. If Ad ^ (i.e., Ad satisfies fi), then 

AA is said to be a SLQSTo-mode/ for if:. A SLQSTo-formula is said to be satisfi- 
able if it has a SLQSTo-model. A SLQSTo-formula is valid if it is satisfied by all 
SLQSTo-interpretations. 


2.1 Characterizing the restricted fragment SLQSTq^ 

SLQSTo^ is the collection of the 3LQSTo-formulae such that, for every purely 
universal formula (VZi)... (yZm)^i of level 1 occurring in if and every purely uni¬ 
versal formula (Vzi)... {\/zn)(po of level 0 occurring in ipi, the condition 

n m 

“■<^0 ~^ /\ l\^i ^ Zj (1) 

i=lj=l 

is a valid SLQSTo-formula (in this case we say that the purely universal formula 
(V^i)... (Vzn)(^o is linked to the variables Zi,, Zm). 

Condition (1) guarantees that, if a given interpretation assigns to zi,...,Zn 
elements of the domain that make (po false, then all such values must be contained 
as elements in the intersection of the sets assigned to Zi,..., Z^- This fact is used 
in the proof of Lemma 3.8 to make sure that satisfiability is preserved in the finite 
model. As the examples in Section 5 will illustrate, condition (1) is not particularly 
restrictive. 

The following question arises: how one can establish whether a given SLQSTo- 
formula is a SLQSTo^-formula? Observe that neither quantification nor collection 
variables are involved in condition (1). Indeed, it turns out that (1) is a 2LS-formula 
and therefore one could use the decision procedures in [14] to test its validity, as 
SLQSTq is a conservative extension of 2LS. We mention also that in most cases of 
interest, as will be shown in detail in Section 5, condition (1) is just an instance of 
the simple propositional tautology -■(p —> q) ^ p, and therefore its validity can 
follow just by inspection. 


3 Relativized interpretations 

Small models of satisfiable SLQSTo^-formulae will be expressed in terms of rela¬ 
tivized interpretations with respect to a suitable domain. 

Definition 3.1 [Relativized interpretations] Let At = {D,M) be a SLQSTq- 
interpretation and let D* ^ D, d* € D*, Vg ^ Vo, C Vi, and ^ > 0. The 
relativized interpretation Rel(A4, D*, d*, Vg, Vj, 1) of At with respect to D*, d*, Vg, 
V'l, and I is the interpretation At* = {D*,M*) such that 

, \Mx, if Mx e D* 

M*x = < 

1 d* , otherwise 
M*X = MX n D* 

M*A = {{MA n pow(D*)) \ {{M*X : X e V^} U pow^;({M*x : x G Vg}))) 

U({M*X : X G V[, MX G MA} U (pow^;({M*x : x G Vg}) n MA)) . 

For ease of notation, we will often omit the reference to the element d* G D* and 
write simply Rel(At,D*, Vg, V(, 1) in place of Rel(At,D*,d*, Vg, V(,/). □ 

Our goal is to show that any given satishable SLQSTg^-formula ijj is satished 
by a small model of the form Rel(At, D*, Vg, V(, 1), where At = {D, M) is a model 
of '0 and D* is a suitable subset of D of bounded finite size. 

At first, we state a slightly stronger result for SLQSTg^-formulae which are 
propositional combinations of quantifier-free atomic formulae of levels 0 and 1. 

Lemma 3.2 Let At = {D,M) and Ai* = Rel(At, D*, d*, Vg, V[, t) be, respectively, 
a 3LQSTQ-interpretation and the relativized interpretation of At with respect to 
D* C D, d* G D*, Vg C Vo, V( C Vi, and I > 0. Furthermore, let ipQ be a level 0 
quantifier-free atomic formula of the form x = y or x & X, with x, y G Vo and X G 
Vi, let i/jq be a level 0 quantifier-free atomic formula of the form {xi,... ,Xk} = X 
or {xi,..., Xk} G A, with xi,..., Xfc G Vo, X G Vi, A G V 2 , k ^ I, and let be a 
level 1 quantifier-free atomic formula of the form X = Y or X ^ A, with X,Y G V(, 
and A G V 2 . Then we have: 

(a) if XIx G D*, for every x €Vo in ipo, then At \= V’o *if At* |= fio; 

(b) if (bl) Mx G D*, for every x G Vo in fio, (b2) M*X = MX, if \MX\ I and 
|M*X| > I otherwise, for every X G V{, and (b3) M*X = MX, for every X 
occurring in such that X G Vi \ V{, then At |= i/jq iff Ai* \= 

(c) if (cl) M*X = MX, if\MX\ ^ I and \M*X\ > I otherwise, for every X G V[, 
and (c2) {MX AMY) D D* 7 ^ 0, ^ for all X,Y G V( such that MX / MY, 
then At \= fii iff At* |= fii. 

Proof. Let us prove case (a) first. Assume fio = x € X. Ai |= x G X if and 
only if Mx G MX. Since Mx G D*, by Definition 3.1, Mx = M*x and thus 
Mx G MX if and only if M*x G MX. Since M*x G D*, M*x G MX if and only 
if M*x G MX n D*. Thus, by Definition 3.1, M*x G MX n D* if and only if 
A'I*x G M*X, and finally M*x G M*X if and only if At* ^ x G X, as we wished 


® We recall that A denotes the symmetric difference operator defined by s At = {s\t) U {t\s). 



to prove. Next, let tpo = x = y. M. \= x = y li and only if Mx = My. Since 
Mx,My G D*, by Definition 3.1, Mx = M*x and My = M*y and thus Mx = My 
if and only if M*x = M*y. Finally M*x = M*y if and only if A4* \= x = y, and 
the thesis follows. 

For what concerns case (b), let us assume hrst that 'iJjq = {xi,..., x^} = X, with 
X G V(. If Ad 1= {xi,..., Xfc} = X, then {Mxi,..., Mx^} = MX and, since k ^ I, 
|MX| ^ I and therefore M*X = MX. Moreover Mxi,... ,Mxk G D* and thus, by 
Definition 3.1, Mxi = M*Xi, for i = 1,... ,k. Thus, if {Mxi,..., Mxk} = MX, it 
holds that {M*xi ,..., M*Xk} = M*X, and finally that Ad* \= {xi,..., x^} = X, 

as we wished to prove. Conversely, assume that Ad ^ {xi,...,Xfc} = X. Then 

{Mxi,..., Mxfc} 7 ^ MX. If \MX\ ^ I, M*X = MX, moreover, reasoning as 
above, Mx, = M*Xi, for i = 1,... ,k. Thus, if {Mxi,..., Mx^} / MX, it holds 
that {M*xi,..., M*Xfc} / M*X, hence Ad* ^ {xi,...,Xfc} = X and the thesis 
follows. Finally, if |MX| > I, |M*X| > I and thus |M*X| > k. As a consequence, 
it follows that {M*xi,..., M*Xk} 7 ^ M*X and thus Ad* ^ {xi,..., x^} = X, as 
we wished to prove. Next, assume that ^pQ = {xi,..., x^} = X, with X G Vi \ V(. 
Since M*X = MX and Mxi = M*Xi, for i = 1,..., fe. Ad ^ {xi,..., x^} = A if 
and only if {Mxi,..., Mx^} = MX if and only if {M*xi,..., M*Xk} = M*X if 
and only if Ad* \= {xi,..., Xk} = X. Hence, even in this case the thesis holds. 

Finally, let ipQ = {xi,...,Xfc} G A. If Ad |= {xi,...,Xfc} G A, then 

{Mxi,..., Mxfc} G MA. In order to show that Ad* |= {xi,...,Xfc} G A, we 

have to prove that {M*xi,..., M*Xk] G M*A. 

Since Mxi,..., Mxk G D*, by Definition 3.1, Mxi = M*Xi, for i = l,...,k. 
Thus {M*xi,..., M*Xfe} = {Mxi,..., Mxfe} and {M*xi,..., M*Xfc} G MA. We 
may have that {M*xi,..., M*Xk} ^ M*A only in one of the following two 
cases. The first case is: {M*xi,..., M*Xk} G pow^;({M*x : x G Vq}) and 
{M*xi,..., M*Xk} ^ MA. This cannot occur because in fact {M*xi,..., M*Xk} G 
MA. The other case to be considered is {M*xi,..., M*Xk} = M*X with MX ^ 
MA, for some X G V{. If {M*xi,... , M*Xk} = M*X, for some X G V{, then 
|M*A| ^ I and, therefore, M*X = MX. Since MX = {M*xi,... ,M*Xk}, the 
assumption MX ^ MA contradicts the hypothesis that {M*xi,..., M*Xk} G MA. 
Hence, we must admit that if {Mxi,... , Mxk} G MA, then {M*xi,..., M*Xk} G 
M*A. 

On the other hand, if Ad ^ {xi,...,Xfc} G A, then {Mxi,..., Mx^} ^ 
MA. Assume, by contradiction, that {M*xi,..., M*Xfc} G M*A. Since 
M*Xi = Mxi, for i = 1,... ,k, {M*xi,..., M*Xk} = {Mxi,..., Mx^} and thus, 
{A/*xi,... ,M*Xk} G M*A only in the case {M*xi,... ,M*Xk} = M*Z, for some 
Z G such that MZ G MA. Since \M*Z\ ^ I, it holds that MZ = M*Z and thus 
AI*Z G MA, and since M*Z = {M*xi,..., M*Xfc} = {Mxi,..., Mx^}, we have 
{Mxi,..., A/xfc} G MA, absurd. 

Finally, let us prove case (c). Let -01 = A = T. If Ad \= X = Y, then 
MX = MY. Thus MX n D* = MY n D* and, by Definition 3.1, M*X = M*Y. 
Since M*X = M*Y, it immediately follows that Ad* |= A = T. On the other hand, 
iiAd'^ X = Y, then MX + MY. Thus (MA A MY) 0 D* 7 ^ 0 and, consequently, 
MX no* ^ MY DD*. If MX n D V MY nD*,hy Definition 3.1, M*X 7 ^ M*Y 
and finally Ad* ^ X = Y. Next, let us assume that i/'i = A G A. 


If MX G MA, then M*X G M*A holds trivially. On the other hand, if MX ^ 
MA, but M*X G M*A, then either M*X G {pow^i{{M*x : x G Vg}) H MA) or 
M*X = M*Z, for some Z G V( such that MZ ^ MA. In the first case, since 
|M*X| ^ I, by (cl) it holds that M*X = MX and thus MX G MA, absurd. In 
the other case, since MZ G MA it holds that MX ^ MZ, and thus, by (c2), 
{AIX A MZ) n D* 7 ^ 0. The latter implies M*X / M*Z, a contradiction. ■ 

By propositional logic, Lemma 3.2 implies at once the following corollary. 

Corollary 3.3 Let Ai = (D,M) and A4* = Kel{Ai, D*, d* ,Vq,V[,1) be, respec¬ 
tively, a SLQSTo-interpretation and the relativized interpretation of M. with respect 
to D* C D, d* € D*, Vq C Vo, V( C Vi, and I > 0. Furthermore, let he a propo¬ 
sitional combination of quantifier-free atomic formulae of the types 

x = y, xeX, {xi,... ,Xk} = X , {xi,...,Xk} ^ A, X = V, XeA 


such that 

• Mx G D*, for every level 0 variable x in ip; 

• k 1; 

• X G V(, for every level 1 variable X in quantifier-free atomic formulae of level 
1 (namely of the form X = Y or X £ A) occurring in ip; 

• M*X = MX if \MX\ ^ I and \M*X\ > I, otherwise, for every level 1 variable 

X G v;,- 

• {MX A MY) no* for all X,Y £V[ such that MX / MY. 

• M*X = MX, for every level 1 variable X G Vi \ V( occurring in ip. 

Then A4 \= ip if and only if AA* \= ip. 

The preceding corollary yields at once a small model property for the collection 
SLSTq of propositional combinations of quantifier-free atomic formulae of the types 

x = y, xeX, {xi,... ,Xk} = X , {xi,...,xk] ^ A, X = Y, XgA 

Indeed, let ip he a satisfiable 3LSTo-formula and let AA = {D, M) be a model for 
it and let I be the maximal length of finite enumerations {xi, ... ,Xk} occurring in 
Ip. Let Vq and vf be respectively the collections of variables of sort 0 and of sort 
1 occurring in ip. 

• For each pair of variables X, V G Vf such that MX ^ MY, let us select an 
element dxY G MX A MY ; 

• construct a set Di such that \J H Di\ ^ min(/ -|- 1, | J|), for every J G {MX : 
X G vf}. 

Then put D* = {Mx : a: G Vf} U {{dxY : X, V G Vf , MX / MV} U L»i). Also, let 
d* be an arbitrarily chosen element of D* . Then, from Corollary 3.3 it follows that 
the relativized interpretation AA* = Rel(A4, L>*, d*, Vf, Vf,/) is a small model for 
Ip, as \D*\ ^ ivfl -|- (Z -|- l)|Vf I -|- |Vf p. In fact, it can be shown that the elements 
dxY in the symmetric differences MX X MY can be selected in such a way that 


\D*\ < \Vq \ + (/ + 2)|vf I holds (see [6]). Summing up, the following result holds: 

Lemma 3.4 (Small model property for 3LSTo-formulae) Let if; be a SLSTq- 
formula, i.e., a propositional combination of quantifier-free atomic formulae of the 
following forms 

x = y, xeX, {xi,... ,Xfc} = X , {xi,...,Xk} ^ A, X = Y, XgA 

and let Vq and Vf be the collections of variables of sort 0 and of sort 1 occurring 
in if, respectively. Then is satisfiable if and only if is satisfied by a SLQSTq- 
interpretation A4 = {D,M) such that \D*\ < \Vq\ + (/ + 2)|vf | . ■ 

Since the SLQSTo-interpretations over a bounded domain are finitely many and 
can be effectively generated, the decidability of the satisfiability problem for SLSTq- 
formulae follows. 

3.1 Relativized interpretations and quantified atomic formulae 

To state the main results on quantified formulae, namely that the relativized in¬ 
terpretation A4* = Kel{AA, D*, d*,V q,V[, 1) of a model A4 = {D,M) for a purely 
universal SLQSTo^-formula of level 0 or 1 also satisfies under suitable condi¬ 
tions on D*, Vq C Vo, V( C Vi, and I (Lemmas 3.7 and 3.8 below), it is convenient 
to introduce the following abbreviations: 

=^^,Rel{M^D*,d*X,V[,l) 

=u.fM*[zi/ui,. . . ,Zn/Un] 

=^^,Rel{M^,D*,d*yo,V[,l) 

with Zi,. . . ,Zn £Vo\ Vq, Zi,. . . ,Zm &Vi\ V(, Ui, . . . ,Un € D, Ui, . . . ,Um T D. 

When ui,...,Un G D*, the 3LQSTo-interpretations A4^’* and coincide, 

as stated in the following lemma, whose proof is routine and is omitted for brevity. 

Lemma 3.5 Let Xi = {D,M) be a 3LQSTo-interpretation, D* C D, tti ,... ,Un G 
D*, and zi,... ,Zn G Vo \ Vq. Then the ALQfiTQ-interpretations Xi^’* and Xi*’^ 
coincide. ■ 

Likewise, under some conditions, the 3LQSTo-interpretations Xd.^’* and XA*’^ 
coincide too, as stated in the following lemma. 

Lemma 3.6 Let XI = (D,M) be a 3LQSTQ-interpretation, D* T D, V[ T Vi, 
Zi,...,Zm G Vi \ V(, andUi,...,Um G pow(D*) \ {M*X : X G V[}. Then the 
3LQSTo-interpretations Xi^'* and XA*'^ coincide. ■ 

We are now ready to prove the main result of the present section, namely 
that if XA = {D,M) satishes a purely universal 3LQSTo^-formula of level 
0 or 1, then, under suitable conditions, the relativized interpretation Xi* = 
Rel(A4, L)*, d*, Vq, V(, Z) of Xi satisfies too. This will be done in the following 
two lemmas. 


Lemma 3.7 Let Ad = (D,M) be a 3hQSTo-interpretation, D* C D, d* ^ D*, 
Vq C Vo, C Vi, Z > 0, and let Ad* = Kel{Ad,D*,d*,VQ,V[,l) be such that 
M*X = MX, if |MX| ^ I and \M*X\ > I otherwise, for every X G V(. Further¬ 
more, let (Vzi)... (f^Zn)y:>o be a purely universal SLQSTq^- formula of level 0 such 
that 

(i) XIx ^ D*, for every x G Vo occurring free in it; 

(ii) Each occurrence of finite enumeration {xi,... ,Xk} in if, with Xi G Vo, for 
every i G {1,... , k}, is such that k ^ 1; 

(Hi) {zi,...,zn} G Vo\Vo; 

(iv) M*X = MX, for every variable X of level 1 in if such that X G Vi \ V{. 

Then 

M 1= (V 21 ) . . . (VZn)v9o ^ A4* 1= (V 21 ) . . . (VZn)v9o ■ 

Proof. Let Ad and Ad* be as in the lemma, and assume that Ad ^ 
(Vzi)... (V2„)(^o whereas Ad* ^ (izfi).. .(izrf)>-po- Then there must exist 
u\,...,Un G D* such that Ad*\z\lu\,... ,Znlurf\ ^ VOj he., Ad*’^ ^ (po. Since, 
by (hi), {zi,..., Zn} G Vo \ Vq, by Lemma 3.5, Ad^’* ^ ipo- 

By (i) and by the definition of Ad^, it is easy to see that M^x G D*, for every 
X G Vo occurring in (/jq- Moreover, by (ii) each occurrence of finite enumeration 
{xi,..., Xfc} in ipQ, with Xj G Vo, for every i G {1,... , k}, is such that k ^ 1. Finally, 
since XrX = MX and M^’*X = M*’^X = M*X, for every variable X G Vi, it can 
be checked that 

• XP’*X = M^X, for every variable X of level 1 occurring in if such that 
X G Vi \ V( (by (iv)), and 

• M^’*X = M^X, if \M^X\ ^ I and \M^’*X\ > I otherwise, for every X G V( 
(because M*X = MX, if \MX\ ^ I and |M*X| > I otherwise, for every 
X G VI). 

Thus, by Lemma 3.2 (a) and (b) we have Ad^ ^ (po, which yields Ad ^ 
(Vzi)... (V^;n)vo, a contradiction. ■ 

Lemma 3.8 Let Ad = {D,M) be a 3hQSTo-interpretation, D* C D, d* ^ D*, 
C Vo, V[ CVi,l> 0, Ad* = Rel{Ad,D*,d*,V(,V[,l), and let (VZi)... (VZ^)(/?i 
be a purely universal SLQSTq^- formula of level 1 such that 

(i) Zi,, Zm ^ V(; 

(ii) X G V(, for every variable X G Vi occurring free in (fi/Zi)... i\IZm)TR 
(Hi) Mx G D*, for every x G Vo occurring free in (VZi)... (\/Zm)p>ii 

(iv) M*X = MX, if \MX\ ^ I and \M*X\ > I otherwise, for every X G V[; 

(v) {MX A MY) n D V 0; for all X, V G V[ such that MX MY; 

(vi) each occurrence of finite enumeration {xi,...,Xfc} in ipi, with Xj G Vo, for 
every z G {1,..., k}, is such that k ^ 1; 

(vii) for every purely universal formula (Vzi)... (fi/znjTo of level 0 occurring in ipi 
and variables Xi,..., Xm G V( such that Ad ((Vzi)... (Vzn)(po)x\’ ’xf,’ 


there are ui, ■ ■ ■ ,Un ^ D* such that Alfzi/ui,... ,Zn/un] ^ (¥^o)xi’ 

(viii) for every purely universal formula (Vzi)... {\/zn)'Po of level 0 occurring in Lp\, 
{zi,...,Zn} € Vo\Vo. 

Then 

M h (V^i) • • • M*^ (VZi) ... (VZ^)(^i . 

Proof. Let Al, Al*, and (VZi)... iyZmfTi be as in the lemma, and assume that 
A^ 1= (VZi)... {yZm)Ti whereas A4* ^ (V^i)... (VZm)<y7i. Then there must exist 
TD* such that M*[Zi/Ui,Zm/Um] ^ <y^i, i-e., 

^ if I. (2) 

Without loss of generality, we may assume that there exists 0 ^ h ^ m such 
that 

• Ui = M*Xi, for 1 ^ i ^ h, for some variables Xi ,..., X^ in , and 

• Uj i {M*X : A G V;}, for all /i + 1 ^ j ^ m. 

Let ifi =Def (¥^i)xi Xft (be., <fi is the formula obtained by simultaneously 
substituting Zi,... ,Zh with Ai ,...,Xh in fi) and let 

AT'^ =^^fAi[Zh+l/Uh+l,---,Zm/Um\- 

Our plan is to show that 

A4^ ^ fi (3) 

holds. Then, since (3) readily implies 

^ if !, (4) 


where 


=Def A4 [Zi/MAi, ..., Zh/MXh, Zh+i/Uh+i, • • •, Z^/Um], 

and (4) in its turn yields A4 ^ (VZi)... (\/Zm)ipi, a contradiction would be derived, 
proving that A4 |= (VZi)... {\/Zm)ipi implies A4* \= (VZi)... {yZm)ipi (and hence 
completing the proof of the lemma). 

Thus, in what follows we will just show that (2) implies (3). 

To begin with, let A4*’'^ M*[Zh+i/Uh+i, ■■■, Plainly, (2) im¬ 

plies at once AT*’'^ ^ (pi. Since, by hypothesis (i) of the lemma and by Lemma 3.6, 
A4*’'^ and AT^ ’* coincide, so that ’* ^ ip\ holds, to prove (3) it will be 

enough, by propositional logic, to show that A4^ ’* and AT'^ coincide on all 
propositional components^ of (^i, which is what we do next. 

By hypotheses (ii), (hi), (iv), (v), and (vi) of the lemma and by Lemma 3.2, 


® Given a formula ip and variables Xi ,..., Xm, Zi,..., Zm, by 'ipxf mean the formula obtained 

by simultaneously substituting Zi,..., Zm with Xi ,..., Xm in 

^ By definition, a formula 'ip of SLQSTq is a propositional combination of certain atomic formulae of level 
0, 1, and 2. These are the PROPOSITIONAL COMPONENTS of -0. 



’* and coincide on all propositional components of Lp\ of any of the 

following types: 

• X = y, X ^ X (with x,y gVq and X G Vi), 

• {xi,...,Xk} = X, {xi,...,Xk} G A (with xi,...,Xk G Vq, X G Vi, and 
A G V 2 ), and 

• X = Y,X € A (with X,Y £V[ and A G V 2 ). 

Thus, to complete the proof, we are only left with showing that ’* and 

coincide also on the propositional components of (fi of the remaining types, namely 
those of the form: 

• Zj = X, X = Zj, Zj G A 

(with X G U {Zh+i ,..., Zm}, A G V 2 , and h + 1 ^ j ^ m), and 

• level 0 purely universal formulae. 

For propositional components of (fi of type Zj = X (with X G Vi \ {Zi, ..., Zh} 
and h + 1 ^ j ^ m), we have: 

^ Zj = X Uj = M^^X n D* 

X = Zi, for some z G {h + 1,..., m} 
such that Ui = Uj 
^ ^Zj=X. 

Analogously, for propositional components of (^1 of type X = Zj, with X G Vi \ 
{Zi,..., Zh} and h Y 1 ^ j ^ m. 

For propositional components of (pi of type Zj G A (with A G V 2 and h + 1 ^ 
j ^ m), we have: 


^ Zj e A ^ Uj G ((M^ A n pow(D*)) \ ({M^ ’*X : X e V(} 

U pow^;({M-^ ’*X : X € Vg})) 

U {{M^~’*X : X G V(, XI^^X G A} 
U (pow^;({M-^ ’*x : X ^ Vq}) n A)) 
Uj G A (since Uj i {M*X ■. X &V[} 

and Uj € pow(D*)) 

M^^Zj G M^^A 

^ \=Zj£ A. 


Finally, let (V^i)... {yzn)Yo be a propositional component of (pi and let (po =uei 
(¥^o)xi’ show that 


’* ^ (Vzi)... {Vzn)(po 


JyU 1= (Vzi) . . . (VZn)y50 • 


(5) 


Let us first assume that 


M.^ ’* ^ (Vzi) . . . i^Zn)^Q 


( 6 ) 


but, by way of contradiction, that 

M.^ ^ (^Zx) ■ ■ ■ ^Zn)(pQ ■ (7) 


We will distinguish two cases, according to whether h < m (i.e., {Ui ,..., Um} % 
{M*X : X € V(}) or h = m (i.e., {C/i,..., C/^} C {M*X : X € V(}). 

Case h < m: From ^ {'^zi)... {\/zn)(poj h follows that there exist 

ui,..., ttn G 77 such that A4^ [zi/ui,... , Zn/un] ^ <fo- Let us put =Def 

Ad^ [zi/tti,..., 2;n/un]. Then we have 

Ad '^ 1 = -'(^0 ■ ( 8 ) 

Recalling that by definition of SLQSTo^-formulae (cf. Section 2.1) the formula 
(Vzi)... {'^Zn)<fo must be linked to the variables Zi,..., Zm, then we have 

n m 

\= - 1(^0 f \ f \ ^ 

i=lj=l 


(cf. condition (1)), so that 


1 = ( “'¥^0 -^ /\ /\ ^ 
V i=ii=i 




I.e., 


n / h 


Thus, by (8), 


1= -<(po i /\ Zi ^ Xj A ^ Zi (z Zj 

i=l \j=l j=h+l / 


n / h m \ 

^ h l\[ A l\ € z, , 

i=l \j=l j=h+l ) 


SO that, for z = 1,..., n, 


Therefore, for i = 1,..., n. 


AT'^ 1= Zi € Z„ 


u,, = = Um. C D* 


(9) 


In view of (9) and by conditions (ii), (iii), (iv), (v), (vi), and (viii) of this lemma, 


we can apply Corollary 3.3 and Lemma 3.5 in the deductions which follow: 


M .^ ^ -,(^0 ^ y \= 




(from (9), conditions (ii), (iii), 
(iv), (v), and (vi) of the) 

present lemma, and Corollary 3.3) 
(from (9), condition (viii), 
and Lemma 3.5) 


^ '* ^ (Vzi) . . . {yZn)ipo ■ 

Hence ’* ^ (V^i)... (V^„)<^o holds, contradicting our initial assumption (6) 

and therefore proving that the case k < m can not arise. 

Case h = m: When h = m, the interpretations and ’* are just AA 

and Ai*, respectively. Thus, our contradictory assumption (7) becomes AA ^ 
(Vzi)... (V 2 ;„)(^ 0 ) which, by condition (vii) of the lemma, implies the existence of 
elements 

Ml,... G D* (10) 

such that AA\zi/ui ,..., Zn/un] ^ i-e., AA^ ^ (p^. But, 


At" ^ ^0 ^ At"’* V= ^0 


At*’" ^ ^0 


(from (10), conditions (ii), (iii), (iv), (v), 
and (vi) of the lemma, and Corollary 3.3) 


(from (10), condition (viii), and Lemma 3.5) 


Ad* y= i^Zx) . . . (VZn)(^o • 


Therefore AA^ ’* ^ (Vzi)... {^Zn)^Q^ which contradicts our assumption (6). Thus, 
even the current case h = m can not arise. Since in any case we get a contradiction, 
we have the following implication: 

Ai^ ’* \= {'izi)...{'izn)(po AA^ |= (Vzi)... (V^;n)‘^o • 

To complete the proof of (5), we need to establish also the converse implication. 
But this follows at once, by observing that if AA^ |= (Vzi)... ^Zn)(pQ^ then by 
conditions (iii), (vi), and (viii) of the lemma and by Lemma 3.7 we have AA^ ’* ^ 
(Vzi) . . . (V 2 :„)(^o- 

This concludes the proof of the lemma. ■ 


4 The satisfiability problem for SLQSTg^-formulae 


We will solve the satisfiability problem for SLQSTq'^ , i.e., the problem of establish¬ 
ing for any given formula of SLQSTq^ whether it is satisfiable or not, as follows: 

(a) firstly, we will reduce effectively the satisfiability problem for SLQSTq^- 
formulae to the same problem for normalized SLQSTo^-conjunctions (these 
will be defined precisely below); 

(b) secondly, we will prove that the collection of normalized 3LQSTo^-conjunctions 
enjoys a small model property. 

From (a) and (b), the solvability of the satisfiability problem for SLQSTq^ will follow 
immediately. In fact, by further elaborating on point (a), it could easily be shown 
that the whole collection of 3LQSTo^-formulae enjoys a small model property. 


4-1 Normalized 3 LQ,STq^- conjunctions 

Let '0 be a formula of 3LQSTo^ and let ijoNF be a disjunctive normal form of ij. We 
observe that the disjuncts of ipDNF are conjunctions of 3LQSTo^-literals, namely 
quantifier-free atomic formulae of levels 0 and 1, or their negations, and of purely 
universal formulae of levels 0 and 1, or their negations, satisfying the linkedness 
condition (1). 

By a suitable renaming of variables, we can assume that no bound variable can 
occur in more than one quantifier in the same disjunct of tpoNF and that no variable 
can have both bound and free occurrences in the same disjunct. 

Without disrupting satisfiability, we replace negative literals of the form 
-i(Vzi)... iyzn)^o and -■(VZi)... occurring in 'ij’DNF by their negated ma¬ 

trices -lyjQ and respectively, since for any given 3LQSTo-interpretation At = 
{D, M) one has At \= -■(Vzi)... {yzn)ifo if and only if At[ 2 :i/ui,..., Zn/un] \= 
for some ui,...,Un G D, and, likewise, At \= if and only if 

At[Zi/[/i,..., Zm/Um] \= for some Ui,..., Um G pow(L)). Then, if needed, we 
bring back the resulting formula into disjunctive normal form, eliminate as above the 
residual negative literals of the form -i(V 2 ;i)... (V2n)y?o which might have been intro¬ 
duced by the previous elimination of negative literals of the form -i(VZi)... (js/Zm)^i 
from tpDNF-, and transform again the resulting formula in disjunctive normal form. 
Let be the formula so obtained. Observe that all the above steps preserve 

satisfiability, so that our initial formula is satisfiable if so is 'iI’dnf- addition, 
the formula '4’'dnf satisfiable if and only if so is at least one of its disjuncts. 

It is an easy matter to check the each disjunct of V'bvf ^ conjunction of 
3LQSTo^-literals of the following types: 

x = y, xeX, {xi,... ,Xfc} = A , {xi,... ,Xfc} G A, 

^{x = y), ^(xGA), ^({xi,...,Xfc} = A), ^({xi,...,Xfc} G A), (I) 

A = F, AgA, -(A = y), -(AgA), 


where x,y,xi,... ,Xk € Vo, X,Y G Vi, and A G V 2 ; 

(Vzi) . . . (V2:n)(/?0 , (II) 

where n > 0 and is a propositional combination of quantifier-free level 0 atoms; 
and 

(VZi)...(VZ™)99i, (III) 

where m > 0 and ipi is a propositional combination of quantifier-free atomic for¬ 
mulae of any level and of purely universal formulae of level 0, where the proposi¬ 
tional components in tpi of type {'izi)... {\/zn)y:>o are linked to the bound variables 

Zi ,... , • 

We call such formulae normalized SLQSTq^- conjunctions. 

The above discussion can then be summarized in the following lemma. 

Lemma 4.1 The satisfiability problem for 3 LQSTq^- formulae can be effectively re¬ 
duced to the satisfiability problem for SLQSTq^- conjunctions. 

4.2 A small model property for normalized ShQSTo^-conjunctions 

Let fj he a normalized SLQSTo^-conjunction and assume that A4 = {D, M) is 
a model for ip. We show how to construct, out of A4, a finite “small” SLQSTq- 
interpretation A4* = (D*, M*) which is a model of ip. We proceed as follows. First 
we outline a procedure to build a nonempty finite universe D* C D whose size 
depends solely on ip and can be computed a priori. Then, following Definition 3.1, 
we construct a relativized 3LQSTo-interpretation A4* = with respect to 

suitable collections Vg and of variables, and to a positive number /, and show 
that A4* satisfies f). 

4 . 2.1 Construction of the universe D*. 

Let V^, vf , and be the collections of the variables of sort 0, 1, and 2 occurring 
in Ip, respectivelyand, an let be smallest number such that fe ^ for every 
finite enumeration {xi,... ,Xk} occurring in ip. We compute D* by means of the 
procedure below. 

Let fii,... ,^phhe the conjuncts of of the form (III). To each such conjunct ipi = 
iyZii)... if/Zimfiipi, we associate the collection ..., of the propositional 
components of its matrix pi and call the variables Zn ,..., Zirrn the arguments of 
Pii,.. .,Piei. Then we put 

^ =Def Wij .1 ^i<h and 1 ^ j < £i}. 

By applying the procedure Distinguish described in [6] to the collection {MX : 
X G vf}, it is possible to construct a set Dq such that 

• XIX n Do ^ MY n Do, for all X,Y eVf such that MX / MY, and 

. |Do| ^ |Vf|-l. 

Next, we construct a set Di satisfying that | JnDi| ^ min(/^ + 1, | J|), for every 
J G {MX : X G vf}. Plainly, we can assume that |Di| ^ {l.ijj + l)|vf |. 


Then, after initializing D* with the set {Mx : x £ V(^}U(DoU-Di), for each (/?€<!> 
of the form (Vzi)... (^Zn)^o having Zi,..., Zm as arguments and for each ordered 
m-tuple (Xj,,... ,Xi ) of variables in vf such that A4 ^ ^ insert in 

D* elements ui,... ,Un ^ D such that Alfzi/ui,..., Zn/un] ^ {^o)xi ’ ’• 

From the previous construction it follows easily that 

\D*\ ^ |V^| + (4 + 2)|vf|-l + iV-|Vf|^-|^>|, (11) 

where M and N are, respectauto.ively, the maximal number of quantifiers in purely 
universal formulae of level 1 occurring in |<I>| and the maximal number of quantifiers 
in purely universal formulae of level 0 occurring in purely universal formulae of level 
1 in |$|. Thus, in general, the domain of the small model D* is exponential in the 
size of the input formula 'll:. 

4-2.2 Correct-ness of the relativization. 

Let us put Ai* = Rel(M,D*,d*,VQ,vf,lTp}. We have to show that, if Ai j= if, 
then Ai* \= t/’. 

Theorem 4.2 Let Ai be a SLQSTo-interpretation satisfying a normalized 
SLQSTq^- conjunction iIj. Further, let Ai* = Rel(Ai,D*,d*,VQ,Vf,l.^) be the 
SLQSTq- interpretation defined according to Definition 3.1, where D* is constructed 
as above, Vq and vf are the collections of variables of levels 0 and 1 occurring in 
if, respectively, and is the smallest number such that k ^ for every finite 
enumeration {xi,... ,Xk} of level 0 variables occurring in if. Then Ai* ^ if. 

Proof. We have to prove that Ai* j= iff for every conjunct if' in if. Each conjunct 
if' is of one of the three types (I), (II), and (III) introduced in Section 4.1. By 
applying Lemmas 3.2, 3.7, or 3.8 to every if' in if (according to the type of if') we 
obtain the thesis. 

Notice that the hypotheses of Lemmas 3.2, 3.7, and 3.8 are fulfilled by the 
construction of D* outlined above. Indeed, 

(i) 

(ii) X £ vf, for every variable X £ Vi occurring free in if; 

(iii) XIX £ D*, for every x £ Vq occurring free in if; 

(iv) M*X = MX, if |MX| ^ and |M*X| > otherwise, for every X £ vf; 

(v) [MX A XIY) r\D* ^ If, for all X,Y £ vf such that MX 7 ^ MY; 

(vi) each occurrence of finite enumeration {xi,..., x^} in if, with Xj £ Vq, for every 
z £ { 1 ,..., k}, is such that k ^ 

(vii) for every purely universal formula (Vzi)... (Vz„)(po of level 0 occurring in 
a purely universal formula of level 1 , and variables Xi,..., Xm £ Vf such 
that Ai ^ ((Vzi)... (Vzn)‘Po)x\’ ’xf,’ there are ui,...,Un £ D* such that 
Ai[zi/Ui, ..., Zn/Un] ^ 

(viii) for every purely universal formula (Vzi)... {fIzn)To of level 0 occurring in (pi, 
{zi,...,Zn}£Vo\Vt. 


From the above reduction and relativization steps, it is not hard to derive the 
following result: 

Corollary 4.3 The fragment SLQSTq^ enjoys a small model property (and there¬ 
fore its satisfiability problem is solvable). ■ 

Reasoning as in [11], it is possible to define a class of subtheories (SLQSTq^)^ 
of 3LQSTo^, whose formulae have quantifier prefixes of length bounded by the 
constant h ^ 2 and satisfy certain syntactic constraints, having an NP-complete 
satisfiability problem. Such subtheories are quite expressive, in fact several set- 
theoretic constructs treated in Section 5 such as, for instance, some variants of the 
powerset operator can be represented in them. Moreover, it can be shown that the 
modal logic S5 can be represented in (SLQSTq^)^. 

5 Expressiveness of the language SLQSTq^ 

Several constructs of elementary set theory are easily expressible within the lan¬ 
guage SLQSTq^. In particular, it is possible to express with SLQSTo^-formulae 
a restricted variant of the set former, which in turn allows one to express other 
significant set operators such as binary union, intersection, set difference, set com¬ 
plementation, the powerset operator and some of its variants, etc. 

More specihcally, a set former of the form X = {z : g:^{z)} can be expressed in 
SLQSTq^ by the formula 

{\/z){z eX ^ (p{z)), (12) 

(in which case it is called an admissible set former of level 0 for SLQSTq^) provided 
that after transforming it into prenex normal form one obtains a formula satisfy¬ 
ing the syntactic constraints of SLQSTq^. This, in particular, is always the case 
whenever ‘p{z) is a quantifier-free formula of SLQSTq^. 

In 1 some examples of formulae expressible by admissible set formers of level 
0 for SLQSTq^ are reported, where 0 and 1 stand respectively for the empty set 
and for the domain of the discourse, and is the complementation operator with 
respect to the domain of the discourse. The formulae in the first column of 1 
are the allowed atoms in the fragment 2LS (Two-Level Syllogistic) which has been 
proved decidable in [14]. Since {xi,... ,Xk} = X is a level 0 quantifier-free atomic 
formula in SLQSTq^, 2LS with finite enumerations turns out to be expressible by 
SLQSTo^-formulae. 

In addition to the formulae in 1 the following literals 

Z (Z X, \Z\^h, |Z| < h-|-1, \Z\^h-\-l, \Z\ = h (13) 

are also expressible by 3LQSTo^-formulae of level 0, where [•[ denotes the cardinality 
operator and h stands for a nonnegative integer constant (cf. 2). In fact, it turns 
out that all literals (13) can be expressed by level 0 purely universal 3LQSTo^- 
formulae which are linked to the variable Z, so that they can freely be used in the 
matrix ip{Z) of a level 1 universal formula of the form i\IZ)Lp[Z). Let us consider, 



admissible set formers for SLQSTq-^ of level 0 

X = 0 

X = {z : z ^ z} 

X = 1 

X = {z : z = z} 

X = Y 

X = {z : z^Y} 

X = Yi U Vz 

X = {2 : z e Yi Vz G Vz} 

X = Yi n Vz 

X = {z : z G Yi Az G Vz} 

X = Vi \ Vz 

X = {z : 2 G Yi A z ^ Vz} 


Table 1 

Some literals expressible by admissible set formers of level 0 for 3LQS^. 



3 LQST 0 ^-formulae 

Z C X 

(Vz )(2 G Z ->■ z G X) 

\Z\ ^ h 

/\ Zi£Z^ y Zi=Zj\ 

\Z\<h + l 

|Z| s: h 

\Z\^h + l 

A\Z\<h + l) 

\z\^o 

z = z 

\Z\ = h 

\Z\ ^hA\Z\^h 


Table 2 

Further formulae expressible by SLQSTo^-formulae of level 0. 


for instance, the formula 

(V^i)... {^Zh+i) ( /\ Zi^Z ^ y Zi = Zj\ (14) 

which expresses the literal \Z\ ^ h. The linkedness condition for it relative to the 
variable Z is 

f /\ Zi ^ Z ^ \J Zi = Zj\ ^ ^ Zi ^ Z, 

which is plainly a valid SLQSTo^-formula since it is an instance of the propositional 
tautology -'(p —>■ q) ^ p, showing that (14) is linked to the variable Z. Similarly, 
one can show that the remaining formulae in (13) can also be expressed by level 0 
purely universal 3LQSTo^-formulae which are linked to the variable Z. 

Similar remarks apply also to the set former of the form A = {Z : (p{Z)'\. This 
can be expressed by the 3LQSTo^-formula 

{^Z){Z ^ ip{Z)) (15) 

(in which case it is called an admissible set former of level 1 for 3LQSTo^) provided 
that (p{Z) does not contain any quantifier over variables of sort 1, and all quantified 
variables of sort 0 in <f{Z) are linked to the variable Z as specified in condition (1). 

Some examples of formulae expressible by admissible set formers of level 1 for 
3LQSTo^ are reported in 3. In this case the symbol 1 stands for the powerset of 
the domain of the discourse. The meaning of the overloaded symbol 1 can always 









admissible set formers of level 1 for 3LQSTo^ 

A = 0 

X = {Z : Z ^ Z} 

A = 1 

X = {Z : Z = Z} 

A = B 

A = {Z : Z ^ B} 

A = U B2 

A = {z ■. z e Bi v z e B2} 

A = B\ n B2 

A = {z ■. z e Bi A z e B2} 

A = Bi\B 2 

A = {Z ■. Z e Bi A Z B2} 

II 

A = {Z : Z = XiV .. .V Z = Xk} 

A = pow(X) 

A = {Z : Z CX} 

A = pOW5;^(X) 

A = {Z : Z C X A\Z\ h} 

A = pow^^(X) 

A = {Z : Z C X A\Z\ = h} 

A = pow^^(X) 

A = {Z : Z C X A \Z\ ^ h} 

A = pOW<;j+i(A:) 

A = {Z : Z C X A\Z\ ^ h} 


Table 3 

Some literals expressible by admissible set formers of level 1 for 3LQSTo^. 


be correctly disambiguated from the context. In view of the fact that, as already 
remarked, the literals (13) can be expressed by level 0 purely universal SLQSTq^- 
formulae which are linked to the variable Z, it follows that all set formers in 3 are 
indeed admissible. 

The propositional combination of the following literals 

A = 0, A = l, A = ^, A = B 1 UB 2 , 

(16) 

A = Bi n B 2 , A = Bi\ B 2 , A = {Vi,..., Vfc} , A = pow(V) 

present in the first column of 3 form the proper fragment 3LSSP of the theory 
3LSSPU (Three-Level Syllogistic with Singleton, Powerset, and Unionset) whose 
decision problem has been solved in [4]. We recall that in addition to the formulae 
in (16), 3LSSPU involves also unionset clauses of the form X = \J A, with X a 
variable of sort 1 and A a variable of sort 2, which, however, are not expressible by 
3LQSTo^-formulae. 

Besides the ordinary powerset operator, 3LQSTo^-formulae allow one also to 
express the variants pow^;j(V), pow=/j(V), and pow^f^{X) reported in 3, which 
denote respectively the collection of all the subsets of X with at most h distinct 
elements, with exactly h elements, and with at least h distinct elements. It is inter¬ 
esting to observe that the satishability problem for the propositional combination 
of literals of the forms x^y,x = yUz, x = yr[z, x = y\z^ involving also one 
occurrence of literals of the form y = pow^]^(x), has been proved to be decidable in 
[7], when sets are interpreted in the standard von Neumann hierarchy (cf. [15]). 

Another interesting variant of the powerset operator is the pow* operator in¬ 
troduced in [2,12] in the solution to the satisfiability problem for the extension 
of MLS with the powerset and singleton operators. We recall that given sets 
Xi,, Xk, pow*(Vi,..., Xk) denotes the collection of all subsets of IJ^=i which 







have nonempty intersection with each set Xi, for i = 1,..., fc. In symbols, 


pow*(Xi,... =, 


f k k \ 

[ i=l i=l ] 

( k k \ 

Z : Z c IJ A /\ -(Z C Xi) L 

L i=i i=i ) 


From the latter expression, it readily follows that the literal A = pow*(Xi,..., X^) 
can be expressed by a 3LQSTo^-formula. 

Given sets Xi,..., the unordered Cartesian product Xi 0... (g> is the set 

Xi G) . . . G Xyi — , ■ ■ ■ , Xn} ■ X\ G Xi , • • • , Xn & j" • 

Then, the literal 

A = XiZ)Xn, (17) 

where A stands for a variable of level 2 and Xi, ..., Xn here stand for variables of 
level 1, can be expressed by the 3LQSTo^-formula 


(VZ) IzgA i —)• (3xi)... (3xn) [ /\xi £ XiA {xi. 


= ^ 


(18) 


, 2=1 


In what follows, we show that (18) can be expressed without making use of the 
finite enumeration operator. When the sets X\,... ,Xn are pairwise disjoint or, on 
the opposite side, when they all coincide, we can readily express the literal (17) by 
a 3LQS'^-formula. For instance, if the sets Xi,... ,Xn are pairwise disjoint, then 
Z G Xi 0 ... (g) Xn if and only if 


(i) |Z| = n, and 

(ii) there exist xi £ Xi,... ,Xn £ Xn such that x\ £ Z, ..., Xn £ Z. 

The above conditions can be used to express the literal (17) by the following 3LQS^- 
formula 

(VZ) (^ £ A i —^|Z| = n A (3xi)... (3xn) ^ Ar=i(®* £ Xi A Xi £ Z) 
as is easy to check, where 



Z| = n 
Z| ^ n 


— Def 


Z| ^ n A |Z| ^ n 


— Def • • • ('^3:^+1) 


n+1 

l\xi £ Z ^ \J Xi = Xj 
i=l 


(notice 


1^1 ^ n ^(|Z| ^ n - 1) 

that |Z| ^ n is linked to the variable Z). 

When Xi = ... = Xn, then Z £ Xg).. .(ZXn if and only if |Z| ^ n and Z C Xi. 
Thus, in this particular case, the literal (17) can be expressed by the 3LQS'^-formula 

[\/Z){z £ A^ (^\Z\ ^ n A iyx)ix £ Z ^ X £ Xi)'jy 

However, if we make no assumption on the sets Xi,... ,Xn, in order to char- 





acterize the sets Z belonging to Xi (g) ... (g) Xn by a 3 LQS^-formula, we have to 
consider separately the cases in which \Z\ = n, \Z\ = n — 1 , etc., listing explicitly, 
for each of them, all the allowed membership configurations of the members of Z. 
For instance, if n = 2 , we have Z £ Xi (g) X2 if and only if 

• \Z\ = 2 and there exist distinct xi G Xi and X2 £ X2 s. t. xi,X2 £ Z] or 

• fZj = 1 and the intersection Xi n X2 H Z is nonempty. 

Thus the following 3 LQS^-formula expresses the literal A = Xi (g) X2: 

2 

(VZ)(^Z £ A < —^ ((1^1 = 2 A (3xi)(3x2)(^xi 7^ X2 A £ Xi Axi £ 

i=l 

V {^Z\ = 1 A (3xi)(3:i G Xi A xi G X 2 A xi G -^)))) • 
Likewise, in the case n = 3 , we have Z £ Xi (g) X2 (g) X3 if and only if 

• \Z\ = 3 and there exist pairwise distinct xi G Xi, X2 G X2, and X3 G X3 such 
that xi,X2,X3 £ Z; or 

• |Z| = 2 and there exist distinct xi and X2 such that either 

• xi G Xi n X2 and X2 G X3, or 

• xi G Xi n X3 and X2 G X2, or 

• xi G X2 n X3 and X2 G Xi, 

and such that xi,X2 £ Z; or 

• |Z| = 1 and the intersection Xi D X2 D X3 D X is nonempty. 

Lemma 5.1 Let Xi,..., Xn be given sets. Then Z £ Xi (g) ... (g) Xn if and only 

there exists a partition P of the set { 1 ,..., n} and a bijection a : Z ^ P such that 

if i £ cr{x), then x £ Xi, for x £ Z and i G { 1 ,... , n}. ( 19 ) 


Proof. Let X G Xi g) ... ®Xn. Then X = {xi,..., Xn}, for some xi G Xi,..., Xn G 
Xn- For X G X, let us put 


{i : X = Xi}. 

Then it is an easy matter to check that P =Def {cr(x) : x G X} is a partition of 
{1,... , n} and cr is a bijection from X into P which satisfies (19). 

Conversely, assume that u : X —^ P is a bijection satisfying (19), for a partition 
P of {1,..., n} and a set X, and put 

— Def i^i) ■> 

where Pi is the block of P containing i. Then it plainly follows that Xj £ Xi, for 
i = 1, ... ,n and that X = {xi,..., Xn}, proving that X G Xi g ... (g) X„. ■ 


Let ^n be the collection of all partitions of the set {1,... , re}. For any partition 
P G ‘^n-, we will assume that the blocks 6i(P),... , 6|p|(P) of P are ordered by a 
total order g in such a way that 



bi{P) -< bj{P) if and only if min6j(P) < min6j(P). 

Then, based on Lemma 5.1, the literal A = Xi 0 ... 0 Xn is expressed by the 
following 3LQS^-formula 


(VZ) ( Z G T e-)- MZ| — |P| A (3zi)... (Bzjpi) ( ^ Zi ^ Zj 

V PeTn V \isSi<is:|P| 

A ^(zi ^ Z A ^ Zi £ . (20) 

i=l \ j&i{P) //// 

Let in be the length of the formula (20). Then the following bounds on in hold: 

in = il{nBn), in = 0{r?Bn) , ( 21 ) 


where Bn = |*Pn| is the nth Bell’s number. Using the bounds on Bn by Berend and 
Tassa (cf. [1]) 

i^T <Bn< 


0.792n 

ln(n+l) 


the bounds (21) yield 

fn = Si {» (irkf) . 


= o 


n 


0.792n 

ln(n+l) 


6 Conclusions and future work 

We have presented a three-sorted stratihed set-theoretic fragment, SLQSTq^, and 
given a decision procedure for its satisfiability problem. The fragment turns out to 
be quite expressive since it allows to represent several set-theoretic construct such 
as variants of the powerset operator and the unordered Cartesian product. Thanks 
to the presence of the finite enumeration operator, SLQSTq^ allows to represent 
the unordered Cartesian product by means of a formula which is linear in the size 
of the product. Another representation of the latter construct is possible without 
resorting to the finite enumeration operator, but is this case the formula turns out 
to be exponentially longer. 

Proceeding as in [11] it is possible to single out a family {(3LQSTo'^)^}/i3.2 of 
sublanguages of 3LQSTo^, characterized by imposing further constraints in the con¬ 
struction of the formulae, such that each language in the family has the satisfiability 
problem NP-complete, and to show that the modal logic S5 can be formalized in 
(3LQSTo^)^. We further intend to study the possibility of formulating non-classical 
logics in the context of well-founded set theory constructing suitable extensions of 
the 3LQSTo^ fragment. 

We also plan to extend the language so as it can express the set theoretical 
construct of general union, thus being able to subsume the theory 3LSSPU. 
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